Proposal of Cybersecurity and Safety Co-engineering Approaches on Cyber-Physical Systems

Cybersecurity and Safety co-engineering is at the heart of various ongoing works for the industry and deals with highly complex and connected systems. However, as this topic grows, few shared methodologies, standards and organizations exist to enable this co-engineering process. In this context, we had the opportunity to bring together both a Safety and a Cybersecurity team to work on methods of collaboration. This resulted in mutually sharing methods and tools between both teams, as well as experiencing the challenges of co-engineering. In this article, we suggest two types of approaches encouraging Cybersecurity and Safety co-engineering and interactions. In the first approach, a Safety team contributes to Cybersecurity activities as defined by EBIOS RM methodology. In the second approach, a Cybersecurity team contributes to Safety inputs for the Safety demonstration. Those approaches are mainly based on the ISO 26262 automotive standard and the EBIOS RM methodology, but they can be extended to any type of context. Alongside the proposed approaches, we suggest orientations and perspectives for future works.